Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/oJS1XxFiMjk80_NW70KjIIddeLc.roa
File: oJS1XxFiMjk80_NW70KjIIddeLc.roa (raw, json)
Hash identifier: SAYg8MLoOL5YookKKhrzoYxhUpAf8zKqAUHkwkeT1hg=
Subject key identifier: A0:94:B5:5F:11:62:32:39:3C:D3:F3:56:EF:42:A3:20:87:5D:78:B7
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018C0AC219CD62BE90256EE9E094145665BA
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/oJS1XxFiMjk80_NW70KjIIddeLc.roa
Signing time: Sun 26 Nov 2023 08:32:21 +0000
ROA not before: Sun 26 Nov 2023 08:32:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 89.47.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:0a:c2:19:cd:62:be:90:25:6e:e9:e0:94:14:56:65:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 26 08:32:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a094b55f116232393cd3f356ef42a320875d78b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:2b:7e:5d:4c:34:e8:05:ea:c4:af:dd:e2:
e4:ee:3a:e0:4f:b8:74:1d:15:8f:0b:5d:49:76:ab:
6b:3c:0d:a8:a0:7a:ab:80:65:90:22:41:9d:70:01:
53:70:80:f3:bf:ad:7d:01:47:f8:d5:6b:9d:70:e2:
b3:0e:90:85:28:ff:c1:4e:f5:28:4b:b2:ab:95:36:
51:54:4e:4a:a9:75:78:b0:f7:9f:1e:ee:f8:f2:88:
d6:32:30:15:c9:08:65:a6:01:24:96:c7:72:83:a5:
9c:cd:bb:a0:f4:59:f2:6e:2f:9f:0c:3d:0b:82:b8:
55:ab:e2:71:03:e1:11:2f:ef:e9:0e:cb:e3:52:76:
45:f6:14:17:54:b3:df:4a:fe:7a:fd:38:af:ac:87:
f2:7b:d9:05:81:cf:a3:25:45:65:40:53:e7:6a:f0:
9f:9a:21:ad:31:7b:ac:28:8d:c2:d9:bf:bc:57:9b:
a5:b7:f2:ac:a1:da:be:9c:d0:67:c0:6d:15:0b:79:
84:93:d7:51:ec:b7:9f:bb:eb:17:96:ed:a7:99:1a:
e9:3a:3d:f8:fe:29:94:26:b2:9a:ce:88:07:88:80:
f7:31:e4:65:98:06:7d:07:bf:a5:8e:0d:84:b8:67:
bc:d6:a3:35:b4:c1:7c:1b:49:4e:d6:94:1a:9a:d5:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:94:B5:5F:11:62:32:39:3C:D3:F3:56:EF:42:A3:20:87:5D:78:B7
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/oJS1XxFiMjk80_NW70KjIIddeLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.47.116.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:22:42:00:19:f8:d0:0d:f1:03:9d:c7:73:c4:a7:61:ef:4c:
a1:d7:d2:18:e9:9a:7c:d4:b1:96:0b:f7:2f:6c:4d:62:c5:83:
67:ae:22:b3:07:f6:9b:b3:58:b8:7c:a2:26:f7:b9:5d:3b:a3:
36:34:b0:05:ce:ac:68:40:75:ea:49:d7:e0:42:c0:4f:45:ff:
f4:4b:c0:96:15:dc:4d:70:9f:fa:20:8a:f4:65:f4:92:c9:9d:
27:63:a8:87:65:68:02:97:66:bc:6e:bf:6e:b4:8e:2a:3a:13:
8e:1d:42:98:e4:37:78:09:77:39:f2:fc:af:8b:b8:cf:3f:b2:
65:96:46:19:5b:23:5e:63:d9:71:cc:ca:a3:cb:1f:a1:af:e5:
65:35:a2:23:be:86:52:9d:27:60:17:ab:dc:be:bc:27:2b:f8:
d1:db:33:b1:d3:cb:8e:67:23:48:aa:05:8a:c7:57:5b:e5:54:
96:56:b9:7f:e0:0b:fa:b8:71:19:0d:f5:2c:04:4a:2a:2c:2d:
33:ab:b5:cd:7c:b2:db:ba:c2:1e:3d:a7:8c:05:a6:b4:49:27:
b9:a9:87:10:42:cb:71:d3:7a:4b:42:d9:63:09:63:4b:a2:19:
b8:ca:ed:b2:51:25:ba:6b:c2:98:31:64:fc:8d:82:71:41:a6:
9d:9b:5a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org